Vulnerabilities > Out-of-bounds Write
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-06-05 | CVE-2018-10058 | Out-of-bounds Write vulnerability in multiple products The remote management interface of cgminer 4.10.0 and bfgminer 5.5.0 allows an authenticated remote attacker to execute arbitrary code due to a stack-based buffer overflow in the addpool, failover-only, poolquota, and save command handlers. | 8.8 |
| 2018-06-05 | CVE-2018-10601 | Out-of-bounds Write vulnerability in Philips products IntelliVue Patient Monitors MP Series (including MP2/X2/MP30/MP50/MP70/NP90/MX700/800) Rev B-M, IntelliVue Patient Monitors MX (MX400-550) Rev J-M and (X3/MX100 for Rev M only), and Avalon Fetal/Maternal Monitors FM20/FM30/FM40/FM50 with software Revisions F.0, G.0 and J.3 have a vulnerability that exposes an "echo" service, in which an attacker-sent buffer to an attacker-chosen device address within the same subnet is copied to the stack with no boundary checks, hence resulting in stack overflow. | 8.2 |
| 2018-06-05 | CVE-2018-10597 | Out-of-bounds Write vulnerability in Philips products IntelliVue Patient Monitors MP Series (including MP2/X2/MP30/MP50/MP70/NP90/MX700/800) Rev B-M, IntelliVue Patient Monitors MX (MX400-550) Rev J-M and (X3/MX100 for Rev M only), and Avalon Fetal/Maternal Monitors FM20/FM30/FM40/FM50 with software Revisions F.0, G.0 and J.3 have a vulnerability that allows an unauthenticated attacker to access memory ("write-what-where") from an attacker-chosen device address within the same subnet. | 8.3 |
| 2018-06-04 | CVE-2016-8390 | Out-of-bounds Write vulnerability in Cryptic-Apps Hopper Disassembler 3.11.20 An exploitable out of bounds write vulnerability exists in the parsing of ELF Section Headers of Hopper Disassembler 3.11.20. | 7.8 |
| 2018-06-04 | CVE-2018-11710 | Out-of-bounds Write vulnerability in Openmpt Libopenmpt soundlib/pattern.h in libopenmpt before 0.3.9 allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted AMS file because of an invalid write near address 0 in an out-of-memory situation. | 8.8 |
| 2018-06-04 | CVE-2018-11685 | Out-of-bounds Write vulnerability in multiple products Liblouis 3.5.0 has a stack-based Buffer Overflow in the function compileHyphenation in compileTranslationTable.c. | 8.8 |
| 2018-06-04 | CVE-2018-11684 | Out-of-bounds Write vulnerability in multiple products Liblouis 3.5.0 has a stack-based Buffer Overflow in the function includeFile in compileTranslationTable.c. | 8.8 |
| 2018-06-04 | CVE-2018-11683 | Out-of-bounds Write vulnerability in multiple products Liblouis 3.5.0 has a stack-based Buffer Overflow in the function parseChars in compileTranslationTable.c, a different vulnerability than CVE-2018-11440. | 8.8 |
| 2018-05-31 | CVE-2018-11626 | Out-of-bounds Write vulnerability in Simple Lossless Audio Project Simple Lossless Audio 0.1.2 SELA (aka SimplE Lossless Audio) v0.1.2-alpha has a stack-based buffer overflow in the core/apev2.c init_apev2_keys function. | 7.5 |
| 2018-05-31 | CVE-2018-11593 | Out-of-bounds Write vulnerability in Espruino Espruino before 1.99 allows attackers to cause a denial of service (application crash) and potential Information Disclosure with a user crafted input file via a Buffer Overflow during syntax parsing because strncpy is misused in jslex.c. | 7.1 |